[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWna2AxRjK9TVDKMQDeMyFRsbWGsJJtNgMVn5c2wbY8c":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":137,"fingerprints":174},"secure-db-connection","Secure DB Connection","1.1.5","hypertextranch","https:\u002F\u002Fprofiles.wordpress.org\u002Fhypertextranch\u002F","\u003Cp>Depending on the MySQL server setup the SSL certs used may not be in the trusted store, if that’s the case \u003Ccode>mysqli_ssl_set()\u003C\u002Fcode> needs to be called to set custom keys and certs before connect. This Plugin adds a custom DB class that allows these settings to be configured via custom constants.\u003C\u002Fp>\n\u003Cp>This plugin will also add a custom item on the “At a Glance” section of the Dashboard to show if the \u003Ccode>$wpdb\u003C\u002Fcode> connection is secure or not.\u003C\u002Fp>\n\u003Cp>Also find me on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fxyu\u002Fsecure-db-connection\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Sets SSL keys and certs for encrypted MySQL database connections.",100,24763,3,"2018-07-08T13:06:00.000Z","4.9.29","4.9","5.2.4",[19,20,21,22,23],"db","encrypted","mysql","secure","ssl","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsecure-db-connection\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsecure-db-connection.1.1.6.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},1,30,84,"2026-04-04T01:05:24.135Z",[37,60,78,99,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":58,"download_link":59,"security_score":11,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"ssl-insecure-content-fixer","SSL Insecure Content Fixer","2.7.2","webaware","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebaware\u002F","\u003Cp>Clean up your WordPress website’s HTTPS insecure content and mixed content warnings. Installing the SSL Insecure Content Fixer plugin will solve most insecure content warnings with little or no effort. The remainder can be diagnosed with a few simple tools.\u003C\u002Fp>\n\u003Cp>When you install SSL Insecure Content Fixer, its default settings are activated and it will automatically perform some basic fixes on your website using the Simple fix level. You can select more comprehensive fix levels as needed by your website.\u003C\u002Fp>\n\u003Cp>WordPress Multisite gets a network settings page. This can be used to set default settings for all sites within a network, so that network administrators only need to specify settings on sites that have requirements differing from the network defaults.\u003C\u002Fp>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fssl.webaware.net.au\u002F\" rel=\"nofollow ugc\">SSL Insecure Content Fixer website\u003C\u002Fa> for more details.\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>Many thanks to the generous efforts of our translators:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Bulgarian (bg_BG) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fbg\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Bulgarian translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Chinese simplified (zh_CN) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fzh-cn\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Chinese translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_CA) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fen-ca\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the English (Canadian) translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_GB) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fen-gb\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the English (British) translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>English (en_ZA) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fen-za\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the English (South African) translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Dutch (nl_NL) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fnl\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Dutch translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>German (de_DE) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fde\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the German translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>French (fr_FR) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Ffr\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the French translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Italian (it_IT) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fit\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Italian translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Japanese (ja) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fja\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Japanese translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Russian (ru_RU) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fru\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Russian translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Spanish (es_ES) — \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Flocale\u002Fes\u002Fdefault\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">the Spanish translation team\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you’d like to help out by translating this plugin, please \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fssl-insecure-content-fixer\" rel=\"nofollow ugc\">sign up for an account and dig in\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>SSL Insecure Content Fixer does not collect any personally identifying information, and does not set any cookies.\u003C\u002Fp>\n","Clean up WordPress website HTTPS insecure content",100000,2650141,96,221,"2025-12-14T04:38:00.000Z","6.9.4","4.0","5.3",[54,55,56,57,23],"https","insecure-content","mixed-content","partially-encrypted","https:\u002F\u002Fssl.webaware.net.au\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fssl-insecure-content-fixer.2.7.2.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":45,"downloaded":68,"rating":34,"num_ratings":69,"last_updated":70,"tested_up_to":50,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":76,"download_link":77,"security_score":11,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"https-redirection","Easy HTTPS Redirection (SSL)","2.0.0","mra13","https:\u002F\u002Fprofiles.wordpress.org\u002Fmra13\u002F","\u003Ch4>Only use this plugin if you have installed SSL certificate on your site and HTTPS is working correctly\u003C\u002Fh4>\n\u003Cp>Once you’ve installed an SSL certificate on your site, it’s important to ensure that your webpages are accessed via their secure HTTPS URLs.\u003C\u002Fp>\n\u003Cp>To improve SEO and user security, you want search engines and visitors to always use the HTTPS version of your pages. This plugin makes that easy by automatically redirecting users to the HTTPS version whenever they try to access the non-HTTPS (HTTP) version of a page.\u003C\u002Fp>\n\u003Ch3>Example\u003C\u002Fh3>\n\u003Cp>Let’s say you want to ensure the following page is always accessed over HTTPS:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Fwww.example.com\u002Fcheckout\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If a visitor tries to access:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>http:\u002F\u002Fwww.example.com\u002Fcheckout\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The plugin will automatically redirect them to the secure version:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Fwww.example.com\u002Fcheckout\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This ensures that visitors always access the HTTPS version of your pages or site.\u003C\u002Fp>\n\u003Cp>You can choose to automatically redirect your entire domain to HTTPS, or selectively apply HTTPS redirection to specific pages.\u003C\u002Fp>\n\u003Ch3>Video Tutorials\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FoyJgRFCM6u8?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FLtyBraB64v8?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>Force Load Static Files Using HTTPS\u003C\u002Fh3>\n\u003Cp>If you started using SSL from day 1 of your site then all your static files are already embedded using HTTPS URL. You have no issue there.\u003C\u002Fp>\n\u003Cp>However, if you have an existing website where you have a lot of static files that are embedded in your posts and pages using NON-HTTPS URL then you will need to change those. Otherwise, the browser will show an SSL warning to your visitors.\u003C\u002Fp>\n\u003Cp>This plugin has an option that will allow you to force load those static files using HTTPS URL dynamically.\u003C\u002Fp>\n\u003Cp>This will help you make the webpage fully compatible with SSL.\u003C\u002Fp>\n\u003Ch3>SSL Certificate Expiry Notification\u003C\u002Fh3>\n\u003Cp>This plugin includes a feature that allows you to receive email notifications when your SSL certificate is about to expire. It helps ensure your website remains secure and accessible over HTTPS.\u003C\u002Fp>\n\u003Cp>You can configure the recipient email address and specify how many days in advance the notification should be sent. By default, the notification is sent 7 days before expiry, but you can adjust this to suit your preference.\u003C\u002Fp>\n\u003Cp>This feature is especially useful for site owners who may not frequently check their SSL status, or for those managing multiple websites. By receiving timely alerts, you can renew your SSL certificate in advance and prevent potential downtime or security warnings.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Automatically redirect all HTTP traffic to HTTPS\u003C\u002Fli>\n\u003Cli>Option to force HTTPS on the entire site\u003C\u002Fli>\n\u003Cli>Option to selectively apply HTTPS redirection to specific pages\u003C\u002Fli>\n\u003Cli>Helps search engines index the secure versions of your pages\u003C\u002Fli>\n\u003Cli>Improves site security and user trust\u003C\u002Fli>\n\u003Cli>Force load static files (images, js, css etc) using a HTTPS URL\u003C\u002Fli>\n\u003Cli>SSL certificate expiry notification – Option to send SSL expiry notifications to a specific email address\u003C\u002Fli>\n\u003Cli>Easily see which SSL certificates on your site are approaching their expiry date.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>View more details on the \u003Ca href=\"https:\u002F\u002Fwww.tipsandtricks-hq.com\u002Fwordpress-easy-https-redirection-plugin\" rel=\"nofollow ugc\">HTTPS Redirection plugin\u003C\u002Fa> page.\u003C\u002Fp>\n","The plugin allows an automatic redirection to the \"HTTPS\" version\u002FURL of the site. Make your site SSL compatible easily.",1169853,71,"2025-12-02T03:12:00.000Z","6.5","",[74,54,55,75,23],"force-ssl","redirection","https:\u002F\u002Fwww.tipsandtricks-hq.com\u002Fwordpress-easy-https-redirection-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhttps-redirection.2.0.0.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":11,"num_ratings":88,"last_updated":89,"tested_up_to":50,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":72,"download_link":97,"security_score":11,"vuln_count":32,"unpatched_count":27,"last_vuln_date":98,"fetched_at":29},"pexlechris-adminer","Database Manager – WP Adminer","4.3.3","Pexle Chris","https:\u002F\u002Fprofiles.wordpress.org\u002Fpexlechris\u002F","\u003Cp>The best database management tool for the best CMS.\u003C\u002Fp>\n\u003Cp>This plugin uses the tool \u003Ca href=\"https:\u002F\u002Fwww.adminer.org\u002F\" rel=\"nofollow ugc\">Adminer\u003C\u002Fa>, in order to give database access to administrators directly from the Dashboard.\u003Cbr \u002F>\nAs simple as the previous sentence!\u003C\u002Fp>\n\u003Cp>I am not the author of Adminer. I am only the author who does the WordPress integration with Adminer.\u003Cbr \u002F>\nAuthor of Adminer is Jakub Vrana and you can donate him from \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fdonate\u002F?item_name=Donation+to+Adminer&cmd=_donations&business=jakub%40vrana.cz\" rel=\"nofollow ugc\">there\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Compatible also with WordPress Multisite installations\u003C\u002Fp>\n\u003Ch3>WP Adminer access positions\u003C\u002Fh3>\n\u003Cp>You can access the WP Adminer from the below positions:\u003Cbr \u002F>\n1. WP Adminer URL in the Admin Bar\u003Cbr \u002F>\n2. WP Adminer Tools Page (Dashboard > Tools > WP Adminer)\u003C\u002Fp>\n\u003Ch3>Explore my other plugins\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.pexlechris.dev\u002Flibrary-viewer\u002Fwp-wpadminer\" rel=\"nofollow ugc\">Library Viewer\u003C\u002Fa>: With Library Viewer, you can display the containing files and the containing folders of a “specific folder” of your (FTP) server to your users in the front-end.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgift-wrapping-for-woocommerce\" rel=\"ugc\">Gift Wrapping for WooCommerce\u003C\u002Fa>: This plugin allows customers to select a gift wrapper for their orders, via a checkbox in the checkout page.\u003C\u002Fli>\n\u003C\u002Ful>\n","Manage the database from your WordPress Dashboard using Adminer.",20000,296374,27,"2026-03-13T07:59:00.000Z","4.7.0","7.0",[93,94,95,21,96],"adminer","database","mariadb","sql","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpexlechris-adminer.4.3.3.zip","2022-08-16 00:00:00",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":109,"num_ratings":110,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":72,"tags":114,"homepage":115,"download_link":116,"security_score":117,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"http-https-remover","SSL Mixed Content Fix","3.2.8","Steve85b","https:\u002F\u002Fprofiles.wordpress.org\u002Fsteve85b\u002F","\u003Cp>\u003Cstrong>Try it out on your free dummy site: Click here => \u003Ca href=\"https:\u002F\u002Ftastewp.com\u002Fplugins\u002Fhttp-https-remover\" rel=\"nofollow ugc\">https:\u002F\u002Ftastewp.com\u002Fplugins\u002Fhttp-https-remover\u003C\u002Fa>.\u003C\u002Fstrong>\u003Cbr \u002F>\n(this trick works for all plugins in the WP repo – just replace “wordpress” with “tastewp” in the URL)\u003C\u002Fp>\n\u003Cp>UPDATE: This plugin will be maintained again! It changed ownership and we’re currently collecting ideas how to further improve it. If you have any cool ideas, please let us know in Support Forum. Thank you!\u003C\u002Fp>\n\u003Cp>Major updated in the latest release (3.0):\u003Cbr \u002F>\n– Plugin has a proper settings page now\u003Cbr \u002F>\n– Many bugs fixed\u003Cbr \u002F>\n– Code optimized, causing performance to increase a lot\u003C\u002Fp>\n\u003Cp>Main features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works in Front- and Backend\u003C\u002Fli>\n\u003Cli>Makes every Plugin compatible with https\u003C\u002Fli>\n\u003Cli>Compatible with WPBakery & Disqus\u003C\u002Fli>\n\u003Cli>Fixes Google Fonts issues\u003C\u002Fli>\n\u003Cli>Makes your website faster\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What does this Plugin do?\u003C\u002Fh4>\n\u003Cp>With protocol relative url’s you simply leave off the http: or https: part of the resource path. The browser will automatically load the resource using the same protocol that the page was loaded with.\u003C\u002Fp>\n\u003Cp>For example, an absolute url may look like\u003C\u002Fp>\n\u003Cpre>\u003Ccode>src=\"http:\u002F\u002Fdomain.com\u002Fscript.js\"\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>If you were to load this from a https page the script will not be loaded – as non-https resources are not loaded from https pages (for security reasons).\u003C\u002Fp>\n\u003Cp>The protocol relative url would look like\u003C\u002Fp>\n\u003Cpre>\u003Ccode>src=\"\u002F\u002Fdomain.com\u002Fscript.js\"\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>and would load if the web page was http or https.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Tipp:\u003C\u002Fstrong> Check your Settings -> General page and make sure your WordPress Address and Site Address are starting with “https”.\u003Cbr \u002F>\nAdd the following two lines in your wp-config.php above the line that​ says “Stop Editing Here”:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define('FORCE_SSL', true);\ndefine('FORCE_SSL_ADMIN',true);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>What is Mixed Content?\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Mixed content\u003C\u002Fstrong> occurs when initial HTML is loaded over a secure HTTPS connection, but other resources (such as images, videos, stylesheets, scripts) are loaded over an insecure HTTP connection. This is called mixed content because both HTTP and HTTPS content are being loaded to display the same page, and the initial request was secure over HTTPS. Modern browsers display warnings about this type of content to indicate to the user that this page contains insecure resources.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note: You should always protect all of your websites with HTTPS, even if they don’t handle sensitive communications.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Example\u003C\u002Fh4>\n\u003Cp>Without Plugin:\u003Cbr \u002F>\n    src=”http:\u002F\u002Fdomain.com\u002Fscript01.js”\u003Cbr \u002F>\n    src=”https:\u002F\u002Fdomain.com\u002Fscript02.js”\u003Cbr \u002F>\n    src=”\u002F\u002Fdomain.com\u002Fscript03.js”\u003C\u002Fp>\n\u003Cp>With Plugin:\u003Cbr \u002F>\n    src=”\u002F\u002Fdomain.com\u002Fscript01.js”\u003Cbr \u002F>\n    src=”\u002F\u002Fdomain.com\u002Fscript02.js”\u003Cbr \u002F>\n    src=”\u002F\u002Fdomain.com\u002Fscript03.js”\u003C\u002Fp>\n\u003Ch4>If using Cache Plugins\u003C\u002Fh4>\n\u003Cp>If the plugin isn’t working like expected please purge\u002Fclear cache for the changes to take effect!\u003C\u002Fp>\n","A fix for mixed content! This Plugin creates protocol relative urls by removing http + https from links. Works in Front- and Backend!",9000,323765,82,34,"2024-07-17T01:21:00.000Z","6.6.5","4.6",[74,54,55,56,23],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhttp-https-Removal\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhttp-https-remover.3.2.8.zip",92,{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":11,"num_ratings":128,"last_updated":129,"tested_up_to":50,"requires_at_least":130,"requires_php":131,"tags":132,"homepage":135,"download_link":136,"security_score":11,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"jsm-force-ssl","JSM Force HTTP to HTTPS \u002F SSL – No Setup, Fast and Reliable","3.5.0","JS Morisset","https:\u002F\u002Fprofiles.wordpress.org\u002Fjsmoriss\u002F","\u003Cp>\u003Cstrong>A simple, safe, and reliable way to force HTTP URLs to HTTPS dynamically:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>No setup required – simply activate the plugin to force HTTP URLs to HTTPS.\u003C\u002Fp>\n\u003Cp>There are no plugin settings to adjust, and no changes are made to your WordPress configuration.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>SIGNIFICANTLY FASTER than other popular plugins of this type:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Other well known plugins use \u003Ca href=\"https:\u002F\u002Fsecure.php.net\u002Fmanual\u002Fen\u002Ffunction.ob-start.php\" rel=\"nofollow ugc\">PHP’s output buffer\u003C\u002Fa> to search & replace URLs in the rendered HTML, which is a technique that is error prone and \u003Cem>negatively affects caching performance\u003C\u002Fem> (as changes are not cached).\u003C\u002Fp>\n\u003Cp>This plugin uses standard WordPress filters instead of PHP’s output buffer for maximum reliability, performance, caching compatibility, and uses 301 permanent redirects for best SEO results (\u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FHTTP_301\" rel=\"nofollow ugc\">301 redirects are considered best for SEO when moving from HTTP to HTTPS\u003C\u002Fa>).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supports advanced proxy \u002F load-balancing HTTP headers:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>X-Forwarded-Proto\u003C\u002Fcode> (aka \u003Ccode>HTTP_X_FORWARDED_PROTO\u003C\u002Fcode> server value)\u003C\u002Fli>\n\u003Cli>\u003Ccode>X-Forwarded-Ssl\u003C\u002Fcode> (aka \u003Ccode>HTTP_X_FORWARDED_SSL\u003C\u002Fcode> server value)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See \u003Ca href=\"https:\u002F\u002Fdeveloper.mozilla.org\u002Fen-US\u002Fdocs\u002FWeb\u002FHTTP\u002FHeaders\u002FX-Forwarded-Proto\" rel=\"nofollow ugc\">Web technology for developers > HTTP > HTTP headers > X-Forwarded-Proto\u003C\u002Fa> for more details.\u003C\u002Fp>\n\u003Ch4>Plugin Requirements\u003C\u002Fh4>\n\u003Cp>Your web server must already be configured with an SSL certificate and able to handle HTTPS connections. 😉\u003C\u002Fp>\n","No setup required - simply activate to force HTTP URLs to HTTPS using native WordPress filters and permanent redirects for best SEO.",7000,105443,13,"2026-03-11T18:06:00.000Z","6.0","7.4.33",[74,55,56,133,134],"redirect","seo","https:\u002F\u002Fsurniaulula.com\u002Fextend\u002Fplugins\u002Fjsm-force-ssl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjsm-force-ssl.3.5.0.zip",{"attackSurface":138,"codeSignals":157,"taintFlows":164,"riskAssessment":165,"analyzedAt":173},{"hooks":139,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":156,"entryPointCount":27,"unprotectedCount":27},[140,145,149],{"type":141,"name":142,"callback":142,"file":143,"line":144},"action","admin_enqueue_scripts","secure-db-connection.php",23,{"type":146,"name":147,"callback":147,"file":143,"line":148},"filter","dashboard_glance_items",24,{"type":141,"name":150,"callback":151,"file":143,"line":152},"plugins_loaded","WP_SecureDBConnection::load",65,[],[],[],[],{"dangerousFunctions":158,"sqlUsage":159,"outputEscaping":161,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":163},[],{"prepared":27,"raw":27,"locations":160},[],{"escaped":27,"rawEcho":27,"locations":162},[],[],[],{"summary":166,"deductions":167},"The plugin 'secure-db-connection' v1.1.5 demonstrates a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface.  Furthermore, the code analysis reveals excellent practices with 100% of SQL queries utilizing prepared statements, and all output being properly escaped. The lack of dangerous functions, file operations, external HTTP requests, and the explicit mention of no bundled libraries further reinforce this positive assessment. Taint analysis also shows no identified vulnerabilities.\n\nThe vulnerability history is equally impressive, with zero known CVEs of any severity. This indicates a mature and secure development process for this plugin.  The absence of past vulnerabilities suggests a consistent focus on security by the developers.  However, it's important to note that a lack of observed vulnerabilities does not guarantee absolute security, especially as the plugin's attack surface is minimal.  \n\nIn conclusion, 'secure-db-connection' v1.1.5 appears to be a very securely developed plugin with a minimal attack surface and excellent coding practices. The absence of vulnerabilities in both static analysis and historical data is a strong positive indicator. The primary area for potential concern, albeit very minor given the data, is the lack of any explicit nonce or capability checks mentioned in the static analysis. While this is not a direct finding of vulnerability due to the lack of entry points, it's a general good practice that would further harden the plugin if any future entry points were introduced.",[168,171],{"reason":169,"points":170},"No nonce checks found",5,{"reason":172,"points":170},"No capability checks found","2026-03-16T20:39:01.787Z",{"wat":175,"direct":181},{"assetPaths":176,"generatorPatterns":178,"scriptPaths":179,"versionParams":180},[177],"\u002Fwp-content\u002Fplugins\u002Fsecure-db-connection\u002Flanguages",[],[],[],{"cssClasses":182,"htmlComments":183,"htmlAttributes":184,"restEndpoints":185,"jsGlobals":186,"shortcodeOutput":187},[],[],[],[],[],[]]